I have an oVirt (ovirt.org) server hosted in a datacenter. I'm trying to setup OPNsense as a "cloud" firewall.

my OPNsense virtual machine is configured with two nics WAN + LAN.My WAN is configured with a Public IP.My LAN is configured as 10.0.255.254/16

I have a few other virtual machines configured with one NIC on each which resides on the LAN network.

As stated with the default install of OPNsense with Outbound NAT set to auto I can ping public hostnames such as google.com or yahoo.com but when using a web browser on the LAN VMs I cannot access the internet.

Hello all again. Just figured out the issue. There are some compatibility issues with KVM's VirtIO nic and OPNsense, PFsense, and FreeBSD in general. When setting up nics in oVirt and any other KVM virtualization use nic type e1000 which is Intel's Generic Gigabit profile.

Don't forget to check out oVirt (ovirt.org) if you're looking for a fully open source alternative to ESXi, vSphere, & vCenter.